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DETAILED ACTION 
Response to Amendment 

1. This action is in response to the amendment received, on March 18, 2005. 
Claims 1-16 were originally received for consideration. Per the received amendment, 
claims 1-16 are amended. Claims 1-16 are currently being considered. 

Response to Arguments 

2. Applicant's arguments with respect to claims 1-16 have been considered but are 
moot in view of the new ground(s) of rejection. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

3. Claims 1-11 are rejected under 35 U.S.C. 102(b) as being anticipated by 
Dorenbos (U.S. Patent No. 5,751,813). 

Regarding claim 1 , Dorenbos discloses: 
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A device for secure transmission respectively forwarding of coded data from a 
first data station via a second data station to a third data station of a network, 
comprising: 

an input unit for receiving said coded data from said first data station and for 
receiving a requester's external key from said third data station or a further data station 
(column 2 lines 6-23, column 3 lines 5-57); 

a unit for recoding said coded data by means of decoding with an internal key 
and renewed encoding with said external key, with said internal key not being 
accessible from outside said device (column 2 lines 6-23, column 3 lines 5-57); and 

an output unit for issuing said data encoded with said external key (column 2 
lines 6-23, column 3 lines 5-57); 

wherein said device is designed in such a manner on or in said second data station that 
said unit for recoding recodes said data only upon request by said third data station with 
aid of said requester's external key and said data are not accessible in decoded form on 
said second data station from outside said device (column 2 lines 6-23, column 3 lines 
5-57). 

Claim 2 is rejected as applied above in rejecting claim 1 . Furthermore, Dorenbos 
discloses: 

The device according to claim 1, wherein said internal key is stored on a suited 
data carrier inside said unit (column 2 lines 6-23, column 3 lines 5-57), wherein the key 
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is stored on a server/computer which is well-known to have hardware to store 
encryption keys. 

Claim 3 is rejected as applied above in rejecting claim 1. Furthermore, Dorenbos 
discloses: 

The device according to claim 1 wherein said unit for recoding comprises a chip 
card as a carrier of said internal key (column 2 lines 6-23, column 3 lines 5-57), wherein 
the key is stored on a server/computer which is well-known to have hardware (chip 
card) to store encryption keys. 

Claim 4 is rejected as applied above in rejecting claim 1. Furthermore, Dorenbos 
discloses: 

The device according to claim 1 , wherein said unit for recoding comprises an 
active chip card with an integrated processor, which partly or completely assumes 
decoding and encoding of said data (column 2 lines 6-23, column 3 lines 5-57). 

Claim 5 is rejected as applied above in rejecting claims 1 to 4. Furthermore, Dorenbos 
discloses: 

The device according to one of the claims 1 to 4, further comprising a buffer and 
logic unit for temporal control of data flow in said device, said buffer and logic unit first 
conveys said coded data for decoding to said unit for recoding and receives said data 
back decoded, and said buffer and logic unit subsequently conveys said decoded data 
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for encoding with said external key to said unit for recoding and receives said data back 
as coded data (column 2 lines 6-23, column 3 lines 5-57), wherein the data is first 
encrypted with a server public key and then decrypted in the server by a server private 
key (internal key) and then is encrypted with the receiver's public key (external key). 
Buffers are well-known in the art and are well-known in hardware. 

Claim 6 is rejected as applied above in rejecting claim 1 to 4. Furthermore, Dorenbos 
discloses: 

The device according to one of claims 1 to 4, wherein said input unit and said 
output unit are provided with standard interfaces for input and output of said data 
(column 2 lines 6-23, column 3 lines 5-57). 

Claim 7 is rejected as applied above in rejecting claim 1 to 4. Furthermore, Dorenbos 
discloses: 

The device according to one of the claims 1 to 4, wherein said unit for recoding 
utilizes asymmetrical encoding processes (column 2 lines 6-23, column 3 lines 5-57), 
wherein the system of Dorenbos uses public-private key encryption. 

Claim 8 is rejected as applied above in rejecting claim 1 to 4. Furthermore, Dorenbos 
discloses: 
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The device according to one of the claims 1 to 4, further comprising a complete 
mechanical and electromagnetic encapsulation with a possibility of sealing (column 5 
lines 53-60). 

Claim 9 is rejected as applied above in rejecting claim 1 to 4. Furthermore, Dorenbos 
discloses: 

The device according to one of claim to 4, further comprising a buffer unit which 
buffers all data flows inside said device to compensate for possible internal-key- 
dependent processing times so that data output of said device occurs according to a 
process-independent time span (column 2 lines 6-23, column 3 lines 5-57), wherein the 
data is first encrypted with a server public key and then decrypted in the server by a 
server private key (internal key) and then is encrypted with the receiver's public key 
(external key). Buffers are well-known in the art and are well-known in hardware. 

Claim 10 is rejected as applied above in rejecting claim 1 to 4. Furthermore, Dorenbos 
discloses: 

The device according to one of the claims 1 to 4, further comprising a unit for 
buffering current input of said device in such a manner that said current input of said 
device is independent of current input of said unit for recoding, which is dependent on 
said internal key, or of other internal circuits (column 2 lines 6-23, column 3 lines 5-57), 
wherein the data is first encrypted with a server public key and then decrypted in the 
server by a server private key (internal key) and then is encrypted with the receiver's 
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public key (external key). Buffers are well-known in the art and are well-known in 
hardware. 

Claim 1 1 is rejected as applied above in rejecting claim 1 to 4. Furthermore, Dorenbos 
discloses: 

The device according to one of claims 1 to 4, further comprising a unit for 
receiving a first data block containing said coded data in addition to further data and for 
separating said coded data from said further data and with a unit for joining said further 
data with receded data to a second data block and for output of said second data block, 
with encoded data representing a key with which said further data are encoded (column 
2 lines 6-23, column 3 lines 5-57). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 12-16 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Dorenbos (U.S. Patent No. 5,751,813) in view of Kaufman et al. (U.S. Patent No. 
5,764,772). 



Regarding claim 12, Dorenbos discloses: 
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A process for secure data transmission of data from a first data station via a 
second data station to a third data station using the device according to claim 1, on or in 
said second data station, comprising: 

encoding the data in first data station with a first key (column 2 lines 6-23, 
column 3 lines 5-57). 

Dorenbos does not explicitly disclose that the first key is divided into a first part and a 
second part in such a manner that neither the first part or the second part alone can 
decode the coded data. Kaufman however disclose a system that a secret key (first 
key) is split into at least two partial keys such that knowledge of a first of the partial keys 
is not enough to break the encrypted message (Abstract). The systems of Dorenbos 
and Kaufman are analogous in that both transmit encrypted messages using 
asymmetrical encryption techniques (public/private key pairs). Furthermore, Kaufman 
encrypts the first partial key and is provided with the encrypted message. It would have 
been obvious that the receiver of the encrypted partial key and the encrypted message 
could be the encryption server as disclosed by Dorenbos, as it servers the same 
function as the authority, which decrypts the first partial key with a private key. 
Furthermore, as disclosed by Dorenbos, each recipient (a data station that wishes to 
receive the encrypted data) sends the public key that is used to recode the first partial 
key as it was used to recode the first key in Dorenbos (column 2 lines 6-23, column 3 
lines 5-57). Both Dorenbos and Kaufman disclose decoding a first encrypted key 
(partial key in Kaufman) with a private key corresponding to the public key used to 
encrypt the first key (partial key). Furthermore, Dorenbos teaches after the decoding of 
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the first partial key, the recoding using the public key of the recipient so that the 
recipient may decode the partial key using the respective private key, when it is 
received. After the first partial key is decoded in the recipient (third data station), 
Kaufman discloses that the complete first key can be reconstructed by the recipient 
(Abstract). This complete secret key is then used in the system of Dorenbos-Kaufman 
to decrypt the encrypted message. It would have been obvious to one of ordinary skill 
in the art to use the partial keys of Kaufman in conjunction with the encryption server 
system of Dorenbos, so that if a partial key is compromised it "reduces but does not 
eliminate the work factor required to break the encrypted message" (Kaufman- 
Abstract). In the system of Dorenbos-Kaufman, the encrypted server becomes the 
middle step, instead of the endpoint as delineated in Kaufman. This combination is 
obvious because it provides a central server that can server multiple recipients by 
receiving their public key and recoding the key using their respective public keys. 

Claim 13 is rejected as applied above in rejecting claim 12. Furthermore, Dorenbos 
discloses: 

The process according to claim 12, wherein said first key is completely encoded 
and transmitted (column 2 lines 6-23, column 3 lines 5-57). 

Claim 14 is rejected as applied above in rejecting claim. Dorenbos does not explicitly 
disclose only a part of the first key being encoded and transmitted to a second data 
station. Kaufman however disclose a system that a secret key (first key) is split into at 
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least two partial keys such that knowledge of a first of the partial keys is not enough to 
break the encrypted message (Abstract). The systems of Dorenbos and Kaufman are 
analogous in that both transmit encrypted messages using asymmetrical encryption 
techniques (public/private key pairs). Furthermore, Kaufman encrypts the first partial 
key and is provided with the encrypted message. It would have been obvious that the 
receiver of the encrypted partial key and the encrypted message could be the 
encryption server as disclosed by Dorenbos, as it servers the same function as the 
authority, which decrypts the first partial key with a private key. Furthermore, as 
disclosed by Dorenbos, each recipient (a data station that wishes to receive the 
encrypted data) sends the public key that is used to recode the first partial key as it was 
used to recode the first key in Dorenbos (column 2 lines 6-23, column 3 lines 5-57). It 
would have been obvious to one of ordinary skill in the art to use the partial keys of 
Kaufman in conjunction with the encryption server system of Dorenbos, so that if a 
partial key is compromised it "reduces but does not eliminate the work factor required to 
break the encrypted message" (Kaufman- Abstract). 

Claim 15 is rejected as applied above in rejecting claims 12 to 14. Furthermore, 
Dorenbos discloses: 

The process according to one of the claims 12 to 14 wherein said coded part of 
said first key is decoded in said third data station with said private key of said third 
station and subsequently said data are decoded with said first key (column 2 lines 6-23, 
column 5 lines 5-57). 
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Claim 16 is rejected as applied above in rejecting claims 12 to 14. Furthermore, 
Dorenbos discloses: 

The process according to one of the claims 12 to 14, wherein said public key of 
said third data station is taken from an internal data bank of said second data station or 
is determined by consultation with a trust center (column 2 lines 6-23, column 5-57). 

Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kaveh Abrishamkar whose telephone number is 571- 
272-3786. The examiner can normally be reached on Monday thru Friday 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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